Apache Ambari prior to 2.1, as used in IBM Infosphere BigInsights 4.x prior to 4.1, includes cleartext passwords on a Configs screen, which allows physically proximate malicious users to obtain sensitive information by reading password fields.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache ambari |